Korenix Technology chips have major vulnerabilities

Korenix makes chips that go into many industrial network switches.  Since it is the core chips that are vulnerable, many of the end products are not able to be effectively patched in a timely manner, with some still vulnerable 1 year after disclosure of the flaws.  This is putting much of the world's critical manufacturing and infrastructure like water and power production/distribution at extreme risk. 

https://www.securityweek.com/industrial-switches-several-vendors-affected-same-vulnerabilities?&web_view=true

For more information, or to comment on this topic, visit Yet Another Security Blog.